closed-social
/
gitea
3
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
9840 Commits
2 Branches
178 MiB
Tree: 45631083a4
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '45631083a4'
${ noResults }
gitea/integrations/api_oauth2_apps_test.go

159 lines
5.3 KiB
Raw Normal View History

adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437) * add API endpoint to create OAuth2 Application. * move endpoint to /user. Add swagger documentations and proper response type. * change json tags to snake_case. add CreateOAuth2ApplicationOptions to swagger docs. * change response status to Created (201) * add methods to list OAuth2 apps and delete an existing OAuth2 app by ID. * add APIFormat convert method and file header * fixed header * hide secret on oauth2 application list * add Created time to API response * add API integration tests for create/list/delete OAuth2 applications. Co-authored-by: techknowlogick <matti@mdranta.net> Co-authored-by: zeripath <art27@cantab.net> Co-authored-by: guillep2k <18600385+guillep2k@users.noreply.github.com>
4 years ago
Add Get/Update for api/v1/user/applications/oauth2 (#11008) Add api methods for getting and updating user oauth2 applications. Signed-off-by: Dan Molik <dan@danmolik.com> Co-authored-by: techknowlogick <techknowlogick@gitea.io>
4 years ago
adds API endpoints to manage OAuth2 Application (list/create/delete) (#10437) * add API endpoint to create OAuth2 Application. * move endpoint to /user. Add swagger documentations and proper response type. * change json tags to snake_case. add CreateOAuth2ApplicationOptions to swagger docs. * change response status to Created (201) * add methods to list OAuth2 apps and delete an existing OAuth2 app by ID. * add APIFormat convert method and file header * fixed header * hide secret on oauth2 application list * add Created time to API response * add API integration tests for create/list/delete OAuth2 applications. Co-authored-by: techknowlogick <matti@mdranta.net> Co-authored-by: zeripath <art27@cantab.net> Co-authored-by: guillep2k <18600385+guillep2k@users.noreply.github.com>
4 years ago
Add Get/Update for api/v1/user/applications/oauth2 (#11008) Add api methods for getting and updating user oauth2 applications. Signed-off-by: Dan Molik <dan@danmolik.com> Co-authored-by: techknowlogick <techknowlogick@gitea.io>
4 years ago
 
  1. // Copyright 2020 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.package models

  4. 

  5. package integrations
  6. 

  7. import (
  8. 	"fmt"
  9. 	"net/http"
  10. 	"testing"
  11. 

  12. 	"code.gitea.io/gitea/models"
  13. 	api "code.gitea.io/gitea/modules/structs"
  14. 

  15. 	"github.com/stretchr/testify/assert"
  16. )
  17. 

  18. func TestOAuth2Application(t *testing.T) {
  19. 	defer prepareTestEnv(t)()
  20. 	testAPICreateOAuth2Application(t)
  21. 	testAPIListOAuth2Applications(t)
  22. 	testAPIGetOAuth2Application(t)
  23. 	testAPIUpdateOAuth2Application(t)
  24. 	testAPIDeleteOAuth2Application(t)
  25. }
  26. 

  27. func testAPICreateOAuth2Application(t *testing.T) {
  28. 	user := models.AssertExistsAndLoadBean(t, &models.User{ID: 2}).(*models.User)
  29. 	appBody := api.CreateOAuth2ApplicationOptions{
  30. 		Name: "test-app-1",
  31. 		RedirectURIs: []string{
  32. 			"http://www.google.com",
  33. 		},
  34. 	}
  35. 

  36. 	req := NewRequestWithJSON(t, "POST", "/api/v1/user/applications/oauth2", &appBody)
  37. 	req = AddBasicAuthHeader(req, user.Name)
  38. 	resp := MakeRequest(t, req, http.StatusCreated)
  39. 

  40. 	var createdApp *api.OAuth2Application
  41. 	DecodeJSON(t, resp, &createdApp)
  42. 

  43. 	assert.EqualValues(t, appBody.Name, createdApp.Name)
  44. 	assert.Len(t, createdApp.ClientSecret, 44)
  45. 	assert.Len(t, createdApp.ClientID, 36)
  46. 	assert.NotEmpty(t, createdApp.Created)
  47. 	assert.EqualValues(t, appBody.RedirectURIs[0], createdApp.RedirectURIs[0])
  48. 	models.AssertExistsAndLoadBean(t, &models.OAuth2Application{UID: user.ID, Name: createdApp.Name})
  49. }
  50. 

  51. func testAPIListOAuth2Applications(t *testing.T) {
  52. 	user := models.AssertExistsAndLoadBean(t, &models.User{ID: 2}).(*models.User)
  53. 	session := loginUser(t, user.Name)
  54. 	token := getTokenForLoggedInUser(t, session)
  55. 

  56. 	existApp := models.AssertExistsAndLoadBean(t, &models.OAuth2Application{
  57. 		UID:  user.ID,
  58. 		Name: "test-app-1",
  59. 		RedirectURIs: []string{
  60. 			"http://www.google.com",
  61. 		},
  62. 	}).(*models.OAuth2Application)
  63. 

  64. 	urlStr := fmt.Sprintf("/api/v1/user/applications/oauth2?token=%s", token)
  65. 	req := NewRequest(t, "GET", urlStr)
  66. 	resp := session.MakeRequest(t, req, http.StatusOK)
  67. 

  68. 	var appList api.OAuth2ApplicationList
  69. 	DecodeJSON(t, resp, &appList)
  70. 	expectedApp := appList[0]
  71. 

  72. 	assert.EqualValues(t, existApp.Name, expectedApp.Name)
  73. 	assert.EqualValues(t, existApp.ClientID, expectedApp.ClientID)
  74. 	assert.Len(t, expectedApp.ClientID, 36)
  75. 	assert.Empty(t, expectedApp.ClientSecret)
  76. 	assert.EqualValues(t, existApp.RedirectURIs[0], expectedApp.RedirectURIs[0])
  77. 	models.AssertExistsAndLoadBean(t, &models.OAuth2Application{ID: expectedApp.ID, Name: expectedApp.Name})
  78. }
  79. 

  80. func testAPIDeleteOAuth2Application(t *testing.T) {
  81. 	user := models.AssertExistsAndLoadBean(t, &models.User{ID: 2}).(*models.User)
  82. 	session := loginUser(t, user.Name)
  83. 	token := getTokenForLoggedInUser(t, session)
  84. 

  85. 	oldApp := models.AssertExistsAndLoadBean(t, &models.OAuth2Application{
  86. 		UID:  user.ID,
  87. 		Name: "test-app-1",
  88. 	}).(*models.OAuth2Application)
  89. 

  90. 	urlStr := fmt.Sprintf("/api/v1/user/applications/oauth2/%d?token=%s", oldApp.ID, token)
  91. 	req := NewRequest(t, "DELETE", urlStr)
  92. 	session.MakeRequest(t, req, http.StatusNoContent)
  93. 

  94. 	models.AssertNotExistsBean(t, &models.OAuth2Application{UID: oldApp.UID, Name: oldApp.Name})
  95. }
  96. 

  97. func testAPIGetOAuth2Application(t *testing.T) {
  98. 	user := models.AssertExistsAndLoadBean(t, &models.User{ID: 2}).(*models.User)
  99. 	session := loginUser(t, user.Name)
  100. 	token := getTokenForLoggedInUser(t, session)
  101. 

  102. 	existApp := models.AssertExistsAndLoadBean(t, &models.OAuth2Application{
  103. 		UID:  user.ID,
  104. 		Name: "test-app-1",
  105. 		RedirectURIs: []string{
  106. 			"http://www.google.com",
  107. 		},
  108. 	}).(*models.OAuth2Application)
  109. 

  110. 	urlStr := fmt.Sprintf("/api/v1/user/applications/oauth2/%d?token=%s", existApp.ID, token)
  111. 	req := NewRequest(t, "GET", urlStr)
  112. 	resp := session.MakeRequest(t, req, http.StatusOK)
  113. 

  114. 	var app api.OAuth2Application
  115. 	DecodeJSON(t, resp, &app)
  116. 	expectedApp := app
  117. 

  118. 	assert.EqualValues(t, existApp.Name, expectedApp.Name)
  119. 	assert.EqualValues(t, existApp.ClientID, expectedApp.ClientID)
  120. 	assert.Len(t, expectedApp.ClientID, 36)
  121. 	assert.Empty(t, expectedApp.ClientSecret)
  122. 	assert.EqualValues(t, len(expectedApp.RedirectURIs), 1)
  123. 	assert.EqualValues(t, existApp.RedirectURIs[0], expectedApp.RedirectURIs[0])
  124. 	models.AssertExistsAndLoadBean(t, &models.OAuth2Application{ID: expectedApp.ID, Name: expectedApp.Name})
  125. }
  126. 

  127. func testAPIUpdateOAuth2Application(t *testing.T) {
  128. 	user := models.AssertExistsAndLoadBean(t, &models.User{ID: 2}).(*models.User)
  129. 

  130. 	existApp := models.AssertExistsAndLoadBean(t, &models.OAuth2Application{
  131. 		UID:  user.ID,
  132. 		Name: "test-app-1",
  133. 		RedirectURIs: []string{
  134. 			"http://www.google.com",
  135. 		},
  136. 	}).(*models.OAuth2Application)
  137. 

  138. 	appBody := api.CreateOAuth2ApplicationOptions{
  139. 		Name: "test-app-1",
  140. 		RedirectURIs: []string{
  141. 			"http://www.google.com/",
  142. 			"http://www.github.com/",
  143. 		},
  144. 	}
  145. 

  146. 	urlStr := fmt.Sprintf("/api/v1/user/applications/oauth2/%d", existApp.ID)
  147. 	req := NewRequestWithJSON(t, "PATCH", urlStr, &appBody)
  148. 	req = AddBasicAuthHeader(req, user.Name)
  149. 	resp := MakeRequest(t, req, http.StatusOK)
  150. 

  151. 	var app api.OAuth2Application
  152. 	DecodeJSON(t, resp, &app)
  153. 	expectedApp := app
  154. 

  155. 	assert.EqualValues(t, len(expectedApp.RedirectURIs), 2)
  156. 	assert.EqualValues(t, expectedApp.RedirectURIs[0], appBody.RedirectURIs[0])
  157. 	assert.EqualValues(t, expectedApp.RedirectURIs[1], appBody.RedirectURIs[1])
  158. 	models.AssertExistsAndLoadBean(t, &models.OAuth2Application{ID: expectedApp.ID, Name: expectedApp.Name})
  159. }